Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/bURxTPKy8JxMQbeTcCXODKLq4Fg.roa
File: bURxTPKy8JxMQbeTcCXODKLq4Fg.roa (raw, json)
Hash identifier: LjynJg5Id7COMYq+iwHcuWfVSnr/eqUimeh/cU9SYUA=
Subject key identifier: 6D:44:71:4C:F2:B2:F0:9C:4C:41:B7:93:70:25:CE:0C:A2:EA:E0:58
Certificate issuer: /CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Certificate serial: 0185703056E0EAC287B48738410C99D60192
Authority key identifier: 8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/bURxTPKy8JxMQbeTcCXODKLq4Fg.roa
Signing time: Mon 02 Jan 2023 01:54:54 +0000
ROA not before: Mon 02 Jan 2023 01:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 79.143.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:56:e0:ea:c2:87:b4:87:38:41:0c:99:d6:01:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Validity
Not Before: Jan 2 01:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d44714cf2b2f09c4c41b7937025ce0ca2eae058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:da:ff:cb:d7:e2:75:53:cd:44:18:cb:cc:88:
4d:ba:bd:7a:dd:d4:6b:c0:c8:e1:45:2a:6e:9e:da:
b6:92:eb:f6:1b:83:0e:f9:a9:93:a8:83:c6:98:0f:
da:f8:c4:51:11:7d:07:21:fb:89:1b:ff:84:08:9e:
ce:0f:53:f7:c3:6a:fe:1e:73:b4:bc:af:3d:26:97:
cd:f0:c1:82:75:60:e4:63:8f:a1:1a:af:05:37:8c:
cc:ba:aa:49:73:f7:8e:6d:a1:e2:4d:c8:b5:fe:26:
52:c3:a1:0c:af:d5:00:6d:5c:bb:87:46:cb:ab:66:
d7:23:c5:4f:f9:43:d9:a9:86:52:d7:28:ca:86:be:
4a:88:6b:0f:56:bc:dd:b3:d9:09:db:5e:e8:b9:14:
d8:a4:0c:aa:9e:c0:b6:12:88:3c:d7:b2:e1:2c:0c:
54:c8:04:1d:95:62:f7:d5:22:41:1d:07:bd:c4:15:
41:90:04:96:09:80:0a:9c:80:e8:37:99:41:8e:60:
08:1b:c5:09:e5:63:e5:0b:e5:36:77:c3:6e:78:af:
51:85:e4:62:17:ea:c2:48:69:a0:1d:07:53:06:0a:
f8:3c:51:18:07:40:95:ea:e8:cc:c8:1f:c1:5c:48:
91:5f:99:6d:01:5f:72:5c:05:a7:f0:3e:d6:ad:08:
be:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:44:71:4C:F2:B2:F0:9C:4C:41:B7:93:70:25:CE:0C:A2:EA:E0:58
X509v3 Authority Key Identifier:
keyid:8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/bURxTPKy8JxMQbeTcCXODKLq4Fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/j3iWOzxPLdGHwgQ33x19nBaMq4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.156.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:a5:70:21:09:ed:7c:58:55:ec:60:5b:00:f2:4c:c0:f1:89:
d1:c8:1f:66:a8:6b:e8:17:02:28:06:da:74:50:9b:d8:60:2b:
cf:12:7f:25:68:e7:75:49:01:c4:2d:97:14:4d:09:4f:63:15:
2a:a0:28:62:a1:82:4b:33:4e:40:bc:15:b0:52:cd:5b:df:e5:
70:50:1e:81:13:30:87:b2:d5:6c:3a:d3:cd:2b:ac:00:0a:1f:
f1:3f:52:eb:6e:87:5a:78:86:9a:84:38:5c:70:4d:72:20:a3:
7a:e8:92:ba:2c:2b:5c:0e:53:a9:39:ab:2b:b8:f3:df:dd:08:
4d:a9:c0:99:61:42:27:d4:1b:4a:9d:ab:64:87:1c:44:91:fc:
14:f7:cc:4e:ab:83:41:a9:31:a5:52:6d:7c:b1:f5:70:1d:57:
b9:a5:77:6c:b8:78:c8:dc:72:dc:eb:f0:82:f7:61:d9:a9:13:
9b:a0:18:de:2b:ef:24:dc:e1:0b:8e:a1:4e:0a:0c:70:52:45:
5f:91:13:40:25:b1:6f:ca:62:09:13:d6:75:ff:45:1b:91:90:
77:65:a9:a3:bc:44:c8:6d:82:83:bd:23:92:fc:69:b5:60:c1:
1e:48:31:2d:a8:22:a0:78:3b:6b:ce:bd:c1:68:96:8d:c7:59:
eb:01:42:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:58 2024 by rpki-client on console-fra.rpki-client.org